Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Publications by: Anoop Singhal (Fed)

Displaying 26 - 50 of 131

An Approach for Detection of Advanced Persistent Threat Attacks

December 1, 2020

Author(s)

Qingtian Zou, Xiaoyan Sun, Peng Liu, Anoop Singhal

Advanced Persistent Threat (APT) campaigns employ sophisticated strategies and tactics to achieve their attack goal. The evolution of APT strategies and tactics compounds the challenge of detecting attack campaigns. This article introduces an approach

Evolving Advanced Persistent Threat Detection Using Provenance Graph and Metric Learning

June 29, 2020

Author(s)

Gbadebo Ayoade, Khandakar A. Akbar, Pracheta Sahoo, Yang Gao, Anoop Singhal, Kangkook Jee, Latifur Khan, Anmol Agarwal

Advanced persistent threats (APT) have increased in recent times as a result of the rise in interest by nationstates and sophisticated corporations to obtain high profile information. Typically, APT attacks are more challenging to detect since they

Defining Actionable Rules for Verifying IOT Safety and Security

May 18, 2020

Author(s)

Kayla Ibrahim, Suryadipta Majumdar, Daniel Bastos, Anoop Singhal

Internet of Things (IoT) is being widely adopted in recent years. Security, however, has lagged behind, as evidenced by the increasing number of attacks that use IoT devices (e.g., an arson that uses a smart oven, burglary via a smart lock). Therefore, the

Automatic Recognition of Advanced Persistent Threat Tactics for Enterprise Security

March 16, 2020

Author(s)

Qingtian Zou, Anoop Singhal, Xiaoyan Sun, Peng Liu

Advanced Persistent Threats (APT) has become the concern of many enterprise networks. APT can remain undetected for a long time span and lead to undesirable consequences such as stealing of sensitive data, broken workflow, and so on. To achieve the attack

Forensic Analysis of Advanced Persistent Threat Attacks in Cloud Environments

January 6, 2020

Author(s)

Changwei Liu, Anoop Singhal, Duminda Wijesekera

Due to the increasing cyber-activities and the use of diverse devices offered on cloud environments, post-attack cloud forensic investigations must deal with data in diverse formats and quantities from emerging attackable interfaces. The process of

Optimizing the Network Diversity to Improve the Resilience of Networks Against Unknown Attacks

September 1, 2019

Author(s)

Daniel Borbor, Lingyu Wang, Sushil Jajodia, Anoop Singhal

Diversity as a security mechanism is receiving renewed interest due to its potential for improving the resilience of software and networks against previously unknown attacks. Recent works show diversity can be modeled and quantified as a security metric at

Determining Forensic Data Requirements for Detecting Hypervisor Attacks

August 7, 2019

Author(s)

Changwei Liu, Anoop Singhal, Ramaswamy Chandramouli, Duminda Wijesekera

Hardware/Server virtualization is a key feature of data centers used for cloud computing services and enterprise computing that enables ubiquitous access to shared system resources. Server virtualization is typically performed by a hypervisor, which

CASFinder: Detecting Common Attack Surface

June 11, 2019

Author(s)

Meng Zhang, Yue Xin, Lingyu Wang, Sushil Jajodia, Anoop Singhal

Code reusing is a common practice in software development due to its various benefits. Such a practice, however, may also cause large scale security issues since one vulnerability may appear in many different software due to cloned code fragments. The well

A Methodology for Enabling Forensic Analysis Using Hypervisor Vulnerabilities Data

June 5, 2019

Author(s)

Ramaswamy Chandramouli, Anoop Singhal, Duminda Wijesekera, Changwei Liu

Hardware/Server Virtualization is a key feature of data centers used for cloud computing services and enterprise computing that enables ubiquitous access to shared system resources. Server virtualization is typically performed by a hypervisor, which

A Layered Graphical Model for Cloud Forensic and Mission Impact Analysis

February 1, 2019

Author(s)

Changwei Liu, Anoop Singhal, Duminda Wijesekera

In this paper, we describe a layered graphical model to analyze the impact of cyber attacks on business processes and services. Our model has three layers: the upper layer models the business processes and their dependencies. The middle layer constructs

Network Attack Surface: Lifting the Attack Surface Concept to Network Level for Evaluating the Resilience against Zero-Day Attacks

December 21, 2018

Author(s)

Meng Zhang, Lingyu Wang, Sushil Jajodia, Anoop Singhal

The concept of attack surface has seen many applications in various domains, e.g., software security, cloud security, mobile device security, Moving Target Defense (MTD), etc. However, in contrast to the original attack surface metric, which is formally

Threat Modeling for Cloud Infrastructures

December 21, 2018

Author(s)

Nawaf Alhebaishi, Lingyu Wang, Anoop Singhal

Today's businesses are increasingly relying on the cloud as an alternative IT solution due to its flexibility and lower cost. Compared to traditional enterprise networks, a cloud infrastructure is typically much larger and more complex. Understanding the

Towards Cyber Resiliency in the Context of Cloud Computing

November 30, 2018

Author(s)

Xiaoyan Sun, Peng Liu, Anoop Singhal

Correct and accurate mission impact assessment is the essential prerequisite of mission-aware cyber resilience. However, an overlooked gap has been existing between mission impact assessment and cyber resilience. This article attempts to bridge the gap by